Re^2: Temporarily Obscuring a Lottery Draw

May I recommend two improvements?

If you're ok with there being only a single chain — I'd even think it was preferable — then

    @matching{@names} = shuffle(@names); # Match 'em up
    
    # No one has themselves
    foreach (@names) {
        next GENERATE if $_ eq $matching{$_};
    }
[download]

simplifies to

    %matching = ( map { $_, $_ } @names )[ 1..@names*2-1, 0 ];
[download]

Another common limit is that B doesn't give to A if A gave to B the previous year. That can be achieved by changing

push @digest, md5_hex($_, '=>', $matching{$_});
[download]

push @digest, md5_hex(join '<=>', sort $_, $matching{$_});
[download]

someone actually bothers to try to crack it

That's *very* easy to do. Say you have "N" participants.

To find out from whom someone specific receives requires at most N hashes, half that on average.
To find out to whom someone specific gives requires at most N hashes, half that on average.
To find all relations requires at most (N*(N-1)-1)/2 hashes, half that on average.

It's even easier than attacking passwords of length 2. Hashing the pairings is merely security theatre. You might as well MIME::Base64 them.

Comment on Re^2: Temporarily Obscuring a Lottery Draw Select or Download Code

Replies are listed 'Best First'.
Re^3: Temporarily Obscuring a Lottery Draw by kennethk (Abbot) on Nov 03, 2008 at 16:34 UTC
B doesn't give to A if A gave to B the previous year That's an interesting one - I may implement it That's very easy to do The real security is chmodding the file to 600. However, there are a few people in the admin group (including myself), so the md5 is more about overhead (making someone take time to write a script) than actual security. The only truly secure choice I can see implementing is the e-mail reminder.	[reply]
Re^4: Temporarily Obscuring a Lottery Draw by ikegami (Patriarch) on Nov 03, 2008 at 21:21 UTC
The overhead is very little more than using MIME::Base64. The (untested) "decrypting" script: Read more... (2 kB) I realise this isn't a place where security is critical. I just wanted to introduce you to security thinking for future reference. By the way, change `open INPUT, '<' . $participantsFile` to `open INPUT, '<', $participantsFile` for free benefits. It wouldn't hurt to add at least the very simple "`or die $!;`".	[reply] [d/l] [select]